# exegol

# Install basic Active Directory pentesting package

exegol install ad

# Turn on logging

exegol start ad -l

TIP

When logging is turned on, logs get saved to /home/sevminsec/.exegol/workspaces/ad/logs

Also, if you're looking for log output from tools like Responder, check the /opt/tools subfolder within the exegol prompt (in other words, not the /opt in the root of your hard drive).

# Sync time to domain controller

If the DC is 10.3.10.40:

faketime "$(rdate -n 10.3.10.40 -p | awk '{print $2, $3, $4}' | date -f - "+%Y-%m-%d %H:%M:%S")" zsh

Then you should be able to grab the ticket you need without it complaining of time skew.